Home

CVE-2021-34501

Description

Microsoft Excel Remote Code Execution Vulnerability

Risk Information

Base Score
7.7
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
9.094

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB5001977) 32-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB5001977) 64-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB5001993) 32-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB5001993) 64-Bit EditionWindows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 for x86 1808 of version(10376.20033)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 x64 1808 (Build:10376.20033)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 for x64 1808 of version(10376.20033)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2102 of version(13801.20808)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Targeted Channel Version 2102 (Build 13801.20808) (Online Installer)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2102 (Build 13801.20808) (Online Installer)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x64 2106 of version(14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x86 2106 of version(14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x64 2106 of version(14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x86 2106 of version(14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel Version 2106 (Build 14131.20320) (Online Installer)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 x64 2106 (Build:14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 for x64 2106 Retail Version (14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 x86 Version 2106 (Build 14131.20320)Windows
Microsoft Word Remote Code Execution Vulnerability for Office 2019 for x86 2106 Retail Version (14131.20320)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-31792Security Update for Microsoft Excel 2016 (KB5001977) 32-Bit Edition
PATCH-31793Security Update for Microsoft Excel 2016 (KB5001977) 64-Bit Edition
PATCH-31788Security Update for Microsoft Excel 2013 (KB5001993) 32-Bit Edition
PATCH-31789Security Update for Microsoft Excel 2013 (KB5001993) 64-Bit Edition
PATCH-31822Update for Office 2019 for x86 1808 of version(10376.20033)
PATCH-31823Office 2016 Deployment Tool for Office 2019 x64 1808 (Build:10376.20033)
PATCH-31824Update for Office 2019 for x64 1808 of version(10376.20033)
PATCH-31826Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2102 of version(13801.20808)
PATCH-31828Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2102 of version(13801.20808)
PATCH-31830Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2102 of version(13801.20808)
PATCH-31832Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2102 of version(13801.20808)
PATCH-31834Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2102 of version(13801.20808)
PATCH-31836Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2102 of version(13801.20808)
PATCH-31838Update for Microsoft 365 Apps for Enterprise Targeted Channel Version 2102 (Build 13801.20808) (Online Installer)
PATCH-31839Update for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2102 (Build 13801.20808) (Online Installer)
PATCH-31814Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2106 of version(14131.20320)
PATCH-31816Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2106 of version(14131.20320)
PATCH-31818Update for Microsoft 365 Apps for Business Current Channel for x64 2106 of version(14131.20320)
PATCH-31820Update for Microsoft 365 Apps for Business Current Channel for x86 2106 of version(14131.20320)
PATCH-31837Update for Microsoft 365 Apps for Enterprise Current Channel Version 2106 (Build 14131.20320) (Online Installer)
PATCH-31840Office 2016 Deployment Tool for Office 2019 x64 2106 (Build:14131.20320)
PATCH-31841Update for Office 2019 for x64 2106 Retail Version (14131.20320)
PATCH-31843Update for Office 2019 for x86 2106 Retail Version (14131.20320)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234